Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require "config/database.php";
- include "templates/header.php";
- if($_SESSION["role"] != "Admin"){
- header("Location: index.php");
- exit();
- }
- ?>
- <?php
- if (isset($_GET['id'])){
- $id = $_GET['id'];
- $sql = 'SELECT * FROM users WHERE id=:id';
- $stmt = $conn->prepare($sql);
- $stmt->bindValue(':id', $id);
- $stmt->execute();
- $row = $stmt->fetch();
- $userFirstname = $row['firstname'];
- $userLastname = $row['lastname'];
- $userUsername = $row['username'];
- $userPassword = $row['password'];
- $userRole = $row['role'];
- }
- if (isset($_POST['update'])){
- $firstname = $_POST['firstname'];
- $lastname = $_POST['lastname'];
- $username = $_POST['username'];
- $password = $_POST['password'];
- $role = $_POST['role'];
- if (empty($firstname) || empty($lastname) || empty($username) || empty($password)){
- echo "Not all fields filled!";
- } else {
- $sql = "UPDATE users SET firstname = :firstname, lastname = :lastname, username = :username, password = :password, role = :role WHERE id = :id";
- $stmt = $conn->prepare($sql);
- $stmt->bindValue(':id', $id);
- $stmt->bindValue(':firstname', $firstname);
- $stmt->bindValue(':lastname', $lastname);
- $stmt->bindValue(':username', $username);
- $stmt->bindValue(':password', $password);
- $stmt->bindValue(':role', $role);
- $stmt->execute();
- header("Location: views/admin.php");
- }
- }
- ?>
- <form method="POST">
- <input type="text" name="firstname" Value=<?php echo $userFirstname;?>>
- <input type="text" name="lastname" Value=<?php echo $userLastname;?>>
- <input type="text" name="username" Value=<?php echo $userUsername;?>>
- <input type="password" name="password" Value=<?php echo $userPassword;?>>
- <select name="role">
- <option value="Admin">Admin</option>
- <option value="Chef">Chef</option>
- <option value="Waiter">Waiter</option>
- <option value="Bartender">Bartender</option>
- </select>
- <input type="submit" name="update" Value="Update user">
- </form>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement